Microsoft: IIS extensions increasingly used as Exchange backdoors
Microsoft says attackers increasingly use malicious Internet Information Services (IIS) web server extensions to backdoor unpatched Exchange servers as they…
Amadey malware pushed via software cracks in SmokeLoader campaign
A new version of the Amadey Bot malware is distributed through the SmokeLoader malware, using software cracks and keygen sites…
QBot phishing uses Windows Calculator sideloading to infect devices
The operators of the QBot malware have been using the Windows Calculator to side-load the malicious payload on infected computers.…
New Lilith ransomware emerges with extortion site, lists first victim
A new ransomware operation has been launched under the name 'Lilith,' and it has already posted its first victim on…
Microsoft fixes dozens of Azure Site Recovery privilege escalation bugs
Microsoft has fixed 32 vulnerabilities in the Azure Site Recovery suite that could have allowed attackers to gain elevated privileges…
Microsoft July 2022 Patch Tuesday fixes exploited zero-day, 84 flaws
Today is Microsoft's July 2022 Patch Tuesday, and with it comes fixes for one actively exploited zero-day vulnerability and a…
Stealthy Cyber-Campaign Ditches Cobalt Strike for Rival ‘Brute Ratel’ Pen Test Tool
The latest criminal use of a legitimate red-teaming tool helps attackers stay under the radar and better access living-off-the-land binaries.
Fake copyright complaints push IcedID malware using Yandex Forms
Website owners are being targeted with fake copyright infringement complaints that utilize Yandex Forms to distribute the IcedID banking malware.…
Ransomware, hacking groups move from Cobalt Strike to Brute Ratel
Hacking groups and ransomware operations are moving away from Cobalt Strike to the newer Brute Ratel post-exploitation toolkit to evade…
Russian govt hackers hit Ukraine with Cobalt Strike, CredoMap malware
The Ukrainian Computer Emergency Response Team (CERT) is warning that Russian hacking groups are exploiting the Follina code execution vulnerability…